The personal information of 945 students, both past, and present, was compromised as a result of a thief stealing the laptop of a Niskayuna school psychologist. The school psychologist had been on vacation in Virginia over the school’s spring break period and their car was broken into and the laptop was taken. The window of…
Month: May 2017
Calling time of death on HHS’s “breach tool”
I was excited back in 2010 when HHS started posting breaches on what some would call the “wall of shame.” I knew that we’d only learn about breaches involving HIPAA-covered entities, but at least we were finally starting to get some actual data. Now, more than 6 years later, it’s become clear to me that it’s probably best to just call time of death…
Blackburn High School families’ details illegally downloaded in targeted attack
Ebony Bowden reports: Police are investigating a major privacy breach at a Melbourne high school, which saw the personal information of families, including their phone numbers, addresses and Medicare details, published online. It’s believed a number of parents at Blackburn High School also provided their credit card details to scammers, after a phishing email masquerading as a…
1.5 million students’ data leaked online, put up for sale for up to Rs60,000
Rozelle Laha reports: Phone numbers, email ID and addresses of at least 1.5 million students are available for a price, although it isn’t clear how this happened. For between Rs1,000 and Rs60,000 it is possible to get information on at least 1.5 million students who appeared for examinations of several types since 2009. Read more on…
Careless handling of HIV information jeopardizes patient’s privacy, costs St. Luke’s-Roosevelt Hospital Center $387k
The U.S. Department of Health & Human Services(HHS), Office for Civil Rights (OCR), has announced a Health Insurance Portability and Accountability Act of 1996 (HIPAA) settlement based on impermissible disclosure of protected health information (PHI). St. Luke’s-Roosevelt Hospital Center Inc. (St. Luke’s) has paid HHS $387,200 to settle potential violations of the HIPAA Privacy Rule…
Medical device containing patient information stolen from DePaul Hospital
Samantha Liss reports: SSM Health has notified 836 patients that their personal information may have been compromised after a medical device was stolen from DePaul Hospital. The device looks like a laptop and that’s likely why it was stolen — not because it contained patient information, SSM Health, owner of DePaul Hospital in Bridgeton, said…